ViperSoftX Malware Disguises as eBooks on Torrents to Spread Stealthy Attacks

/in

The sophisticated malware known as ViperSoftX has been observed being distributed as eBooks over torrents.
“A notable aspect of the current variant of ViperSoftX is that it uses the Common Language Runtime (CLR) to dynamically load and run PowerShell commands, thereby creating a PowerShell environment within AutoIt for operations,” Trellix security researchers Mathanraj Thangaraju and Sijo Jacob

The Hacker News – ​Read More

New OpenSSH Vulnerability Discovered: Potential Remote Code Execution Risk

/in

Select versions of the OpenSSH secure networking suite are susceptible to a new vulnerability that can trigger remote code execution (RCE).
The vulnerability, tracked as CVE-2024-6409 (CVSS score: 7.0), is distinct from CVE-2024-6387 (aka RegreSSHion) and relates to a case of code execution in the privsep child process due to a race condition in signal handling. It only impacts versions 8.7p1

The Hacker News – ​Read More

Houthi-Aligned APT Targets Mideast Militaries With ‘GuardZoo’ Spyware

/in

Simple malware and simple TTPs play against a backdrop of complex geopolitical conflict in the Arab world.

darkreading – ​Read More

Microsoft Patch Tuesday: Microsoft Patches 142 Critical Vulnerabilities

/in

Microsoft plugs critical security holes in July Patch Tuesday! 142 vulnerabilities patched, including actively exploited zero-days and remote…

Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – ​Read More

5 Tips to Minimize the Costly Effects of Data Exfiltration

/in

The more sensitive data an organization collects, the more at risk it is to a cyberattack. Here’s how to limit the damage.

darkreading – ​Read More

Cloud-Based Investigations Platform Targets Complexity in Incident Response

/in

Software-as-a-service company Command Zero launches with a platform for investigating cybersecurity incidents that aims to minimize the grunt work.

darkreading – ​Read More

The best tablets of 2024: Expert tested and reviewed

/in

We reviewed the top tablets from Apple, Samsung, Amazon, and more to help you choose the best one for your needs.

Latest news – ​Read More

Attackers Already Exploiting Flaws in Microsoft’s July Security Update

/in

In all, the company released fixes for a whopping 139 CVEs in its own products and four for non-Microsoft products.

darkreading – ​Read More